Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/gSLVYUkwoBTX_K5CY94GITw2C6s.roa
File: gSLVYUkwoBTX_K5CY94GITw2C6s.roa (raw, json)
Hash identifier: 0ncK5zhhnDujetKY1YNHKuWTwSdGVcxeiqpStsQ97dY=
Subject key identifier: 81:22:D5:61:49:30:A0:14:D7:FC:AE:42:63:DE:06:21:3C:36:0B:AB
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 01856BD34247743649FD8B2208330CEF49B2
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/gSLVYUkwoBTX_K5CY94GITw2C6s.roa
Signing time: Sun 01 Jan 2023 05:34:45 +0000
ROA not before: Sun 01 Jan 2023 05:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202613
IP address blocks: 91.230.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:42:47:74:36:49:fd:8b:22:08:33:0c:ef:49:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: Jan 1 05:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8122d5614930a014d7fcae4263de06213c360bab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b4:53:40:d0:13:b0:bf:de:e3:e5:28:eb:0e:
f1:2c:99:58:4b:df:cd:50:75:7f:05:33:6a:d0:be:
eb:0f:5a:41:84:ea:67:06:3f:d9:82:55:45:85:38:
17:89:98:34:8f:41:25:ca:c6:eb:cb:62:26:2c:cd:
fd:3d:f6:c0:e8:8c:a5:68:f2:ec:02:74:8a:94:ca:
1a:14:cd:00:9c:a4:35:a3:50:c9:19:ea:57:42:30:
2a:ea:d9:af:16:4f:99:5a:b8:5b:07:31:bd:e4:1b:
ce:75:3a:76:74:6b:72:1a:40:39:70:eb:66:02:48:
fd:b3:b6:84:ed:24:f7:b6:99:7a:74:a3:28:01:30:
a2:35:ee:73:fe:cb:92:54:6f:e1:0a:fe:5b:bc:58:
f4:35:54:c9:46:eb:3b:52:21:25:ea:25:81:56:92:
b7:db:5a:01:c5:a4:94:3b:0b:7c:13:e7:92:b5:45:
eb:85:98:c3:e4:bd:34:77:a2:21:d1:77:35:d7:0a:
55:61:b1:57:64:91:7f:2c:b4:19:3d:65:8a:3c:09:
6d:08:10:09:9a:03:df:1b:20:2f:7e:6b:59:3c:99:
b0:36:da:04:fc:14:75:1f:74:ea:30:26:82:f1:3c:
b5:32:bf:63:0b:5b:3c:e0:73:32:69:b4:16:fa:e4:
55:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:22:D5:61:49:30:A0:14:D7:FC:AE:42:63:DE:06:21:3C:36:0B:AB
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/gSLVYUkwoBTX_K5CY94GITw2C6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.247.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:5b:48:d8:86:35:c3:5f:f0:51:af:0f:32:6e:b6:e0:35:2f:
10:0a:15:7d:6a:87:b2:56:c0:2b:a8:22:24:c5:65:0e:5c:d9:
18:44:02:37:63:a0:03:6d:c3:d9:27:47:0f:79:6e:67:8c:c0:
d5:d1:fa:ec:13:1d:6d:00:9a:32:e3:e1:de:5e:73:84:17:12:
9d:c5:80:90:ff:44:61:d3:01:c7:27:34:01:57:08:48:1b:3d:
47:0e:11:4d:cf:2d:0f:f0:89:16:05:fb:e1:94:f1:1e:cd:c3:
d4:43:5f:73:77:f6:3c:82:b4:d1:51:4a:85:8a:21:a7:7a:17:
95:3d:6f:ce:f0:a6:23:76:04:38:c7:cd:9d:4f:9c:78:a3:6a:
57:36:8c:b6:23:4a:35:17:3c:dd:4b:16:20:7a:c9:34:ee:a0:
47:b4:8c:c9:16:52:85:e9:fd:54:1b:e0:96:81:94:1e:5c:c6:
bd:ac:e5:66:16:f6:94:4b:d4:71:e2:90:cb:0e:10:03:d9:4f:
a6:43:d4:9a:e5:93:5d:41:5c:8f:03:55:d6:c6:05:83:0b:ba:
4b:a3:d4:b4:0d:65:3f:97:94:2c:39:b4:5e:a1:c9:ee:5f:94:
da:9f:d8:be:c5:1f:85:89:ae:4b:75:c4:d7:ed:73:3d:54:c7:
13:22:b8:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr00JHdDZJ/YsiCDMM70myMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNWU5M2Y5MDIzNTRjZTQ4MDRiNGNiMDQ5Y2Y2OGIyMGY3
NmFlYjIwHhcNMjMwMTAxMDUzNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTIyZDU2MTQ5MzBhMDE0ZDdmY2FlNDI2M2RlMDYyMTNjMzYwYmFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubRTQNATsL/e4+Uo6w7xLJlYS9/N
UHV/BTNq0L7rD1pBhOpnBj/ZglVFhTgXiZg0j0Elysbry2ImLM39PfbA6IylaPLs
AnSKlMoaFM0AnKQ1o1DJGepXQjAq6tmvFk+ZWrhbBzG95BvOdTp2dGtyGkA5cOtm
Akj9s7aE7ST3tpl6dKMoATCiNe5z/suSVG/hCv5bvFj0NVTJRus7UiEl6iWBVpK3
21oBxaSUOwt8E+eStUXrhZjD5L00d6Ih0Xc11wpVYbFXZJF/LLQZPWWKPAltCBAJ
mgPfGyAvfmtZPJmwNtoE/BR1H3TqMCaC8Ty1Mr9jC1s84HMyabQW+uRVMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIEi1WFJMKAU1/yuQmPeBiE8NgurMB8GA1UdIwQY
MBaAFK9ek/kCNUzkgEtMsEnPaLIPdq6yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWIt
N2UwNWFkMDE5MGNlLzEvZ1NMVllVa3dvQlRYX0s1Q1k5NEdJVHcyQzZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWItN2UwNWFkMDE5MGNl
LzEvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+b3MA0G
CSqGSIb3DQEBCwUAA4IBAQAtW0jYhjXDX/BRrw8ybrbgNS8QChV9aoeyVsArqCIk
xWUOXNkYRAI3Y6ADbcPZJ0cPeW5njMDV0frsEx1tAJoy4+HeXnOEFxKdxYCQ/0Rh
0wHHJzQBVwhIGz1HDhFNzy0P8IkWBfvhlPEezcPUQ19zd/Y8grTRUUqFiiGneheV
PW/O8KYjdgQ4x82dT5x4o2pXNoy2I0o1FzzdSxYgesk07qBHtIzJFlKF6f1UG+CW
gZQeXMa9rOVmFvaUS9Rx4pDLDhAD2U+mQ9Sa5ZNdQVyPA1XWxgWDC7pLo9S0DWU/
l5QsObReocnuX5Tan9i+xR+Fia5LdcTX7XM9VMcTIrhI
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:30 2024 by rpki-client on console-ams.rpki-client.org